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ABSTRACT 



A smart card comprises a microcontroller, a memory unit, a 
storage unit, and a communications unit. The smart card may 
be connected to a terminal, which is in turn may be con- 
nected to a host computer and/or a network. The smart card 
is configured to initiate communications with the terminal, 
which enables the smart card to control the terminal, host 
computer, or network and to access the resources connected 
to the terminal, host computer, or network. A communica- 
tions protocol defines the commands that the smart card can 
send and allows the smart card to communicate using 
asynchronous or logical asynchronous communication. 

12 Claims, 8 Drawing Sheets 
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SYSTEM AND METHOD FOR AN IS07816 
COMPLAINT SMART CARD TO BECOME 
MASTER OVER A TERMINAL 

This application claims the benefit of the filing of U.S. 
Provisional patent application Ser. No. 60/051,326, filed 
Jun. 30, 1997. 

BACKGROUND OF THE INVENTION 

The invention relates to smart cards, and in particular to 
smart card control of terminal and network resources. 

Smart cards are used for a variety of applications includ- 
ing electronic game cards, identification badges, and data 
storage media such as electronic books. The smart cards are 
typically encased in a tamper-resistant, plastic or metal 
housing about the size of a credit card and contain one or 
more embedded integrated circuit devices. Terminals, such 
as ID verification systems and electronic video games, etc., 
are available with one or more smart card interfaces that 
permit connection of the smart card to the terminal. 

In traditional systems, the terminals or terminal device 
accesses the smart card through standard protocols, such as 
the ISO 7816 protocol. These protocols usually limit the 
smart cards to the role of "slave", while the terminal or 
terminal device acts as the "master". This means that the 
smart card cannot initiate any action or communication, but 
can only respond to specific commands from the terminal A 
prior art terminal typically starts in the idle state (ST11), as 
shown in FIG. 1, The terminal then transmits a command to 
the smart card (ST12), and then waits for a response (ST13). 
After receiving the response from the smart card (ST14), the 
terminal returns to the idle state (ST11). Similarly, as shown 
in FIG. 2, a prior art smart card begins with the smart card 
waiting for a command from the terminal (ST21). Upon 
receiving the command from the terminal (ST22), the smart 
card proceeds to prepare an appropriate response (ST23), 
transmits the response to the terminal (ST24), and returns to 
the wait state (ST21) to await the next command. Under the 
above scheme, there is no provision for the smart card to 
access resources controlled by the terminal. 

European Patent Application Document EP-A-662 674 
discloses a smart card transaction system in which the 
traditional master-slave relationship is reversed. EP-A-662 
674 proposes a transaction processing system which consists 
of "master" elements that control a specific transaction and 
"slave" elements that respond to the master to execute the 
transactions. In EP-A-662 674 the master elements are 
arranged in the cards and the slave elements in the terminals. 
During the processing of a transaction, it is possible for a 
card operating in master mode, to go to slave mode and vice 
versa. 

SUMMARY OF THE INVENTION 

In general, in one aspect, the invention relates to a smart 
card system. The system has a terminal and a smart card that 
is connected to the terminal and configured to initiate 
communication with the terminal. The smart card commu- 
nicates with the terminal using a communications protocol 
that enables asynchronous communications between the 
smart card and the terminal. For systems that do not support 
asynchronous communication, the communications protocol 
also enables logical asynchronous communications. The 
system further comprises means for establishing fall-duplex 
or logical fall-duplex communication between the smart 
card and the terminal. The terminal may be connected to a 
host computer which is in turn connected to a network. The 
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smart card can access the resources connected to the 
terminal, the host computer, and the network. 

In general, in another aspect, the invention relates to a 
smart card that has a communications circuit and a micro- 

5 controller. The microcontroller is configured to initiate com- 
munication with a terminal to which the smart card is 
connected. The smart card also has a storage unit that stores 
programs that are executed by the microcontroller and a 
memory unit that temporarily stores the programs. The 

10 terminal may be connected to a host computer and a 
network, and the smart card may access the resources 
connected to the terminal, the host computer, and the net- 
work. 

In general, in another aspect, the invention relates to a 
35 method of operating a smart card. The method comprises 
transmitting a command from the smart card to the terminal, 
waiting for a response from the terminal, and receiving the 
response from the terminal. The smart card initiates com- 
munication with the terminal. A communications protocol, 
20 which may be configured to be ISO 7816 compatible, allows 
the smart card to communicate asynchronously with the 
terminal, or logically asynchronously with the terminal in 
cases where the actual asynchronous communication is not 
available. Additionally, the communication may occur in 
25 fall -duplex mode. If a response is not received within a 
predefined time period, the smart card re-transmits the 
command. The method also comprises requesting a list of 
available services from the terminal and selecting a com- 
mand based on the list of services. 

30 

In general, in another aspect, the invention relates to a 
method of debugging a smart card. The method includes 
executing a diagnostic portion of a program stored on the 
smart card, receiving a result from the smart card, and 

35 comparing the result with an expected result. The method 
further includes displaying the result on a terminal display. 

Advantages of the invention include at least the follow- 
ing: smart card control of terminal, host computer, and 
network resources; smart card-initiated communication with 

40 a terminal, host computer, and network; and asynchronous 
communication between a smart card and a terminal, host 
computer, and network. Other advantages will become 
apparent from the below description and the following 
claims. 

45 BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a state machine diagram of a prior art terminal. 
FIG. 2 is a state machine diagram of a prior art smart card. 
5Q FIG. 3 is a block diagram of a smart card system. 

FIG. 4 is a state machine diagram of the smart card of the 
present invention. 

FIG. 5 is a state machine diagram of the terminal of the 
present invention. 
55 FIG. 6 is a block diagram of a smart card communications 
scheme. 

FIG. 7 illustrates a smart card communications protocol. 
FIG. 8 is another embodiment of the smart card system. 
60 FIG. 9 is a method of operating a smart card. 

FIG. 10 is another method of operating a smart card. 

DETAILED DESCRIPTION OF THE 
PREFERRED EMBODIMENT 

65 Throughout the description and the drawings, elements 
which are the same will be accorded the same reference 
numbers. 
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Referring to FIG. 3, a smart card systems 30 has a smart In some cases, it may be desirable to add time-out features 

card 31 connected to a terminal 32 which has terminal to the smart card 31 so that if a response is not received in 

resources 33 available. The terminal resources 33 may be the allotted time, the smart card 31 takes alternative actions, 

very minimal, such as an input/output port for connecting to such as re-transmitting the command or transmitting a 

a host computer, or the resources 33 could be more 5 different command. 

extensive, for example, a keyboard, monitor, modem, cash It should be noted that the state machine diagrams of 

dispenser, and other specialized resources. FIGS. 4 and 5 represent systems with only half-duplex 

In some systems, the smart card 31 and the terminal 32 communication between the smart card 31 and terminal 32. 

operate independently of any other devices. This is exem- Alternative systems may, of course, be designed to support 

plified by portable value checker products which allow a 1Q full-duplex communication between the smart card 31 and 

particular value in the smart card 31 to be displayed by the terminal 32. For example, referring to FIG. 6, fall -duplex 

terminal, and portable Mondex transaction devices which communication between the smart card 31 and the terminal 

allow two smart cards 31 to be connected to a single terminal 32 may be implemented using two conventional RS-232 

32, and to transfer data between the two cards 31. serial ports in both the smart card 31 and terminal 32. Serial 

In other systems, the terminal resources 33 connect the ports 61 and 62 of the smart card 31 transmit and receive 

terminal 32 to a host computer 34, which has certain host data t0 and from P orls 63 and 64 in the terminal 32, 

computer resources 35 available. These resources could respectively. Because the transmissions in one direction are 

include a network connection, keyboard, monitor, hard disk, independent in time relative to the transmissions in the other 

and other types of resources common to computers or directlon : * e ^ c * rd th 31 and / he terminal 32 ma y 

specialized for a particular application. The smart card 31 , n W1 * each other asynchronously, 

can send commands to, and receive responses from, the host 20 * D s y stems ^ have only half-duplex physical 

* ia *u u *u ♦ * i ii j ■ channels are generally limited to synchronous communica- 

computer 34 through the terminal 32, and vice-versa. t . j * • u • c • 

_ , . „ , * tion and typically require synchronous communication 

The host computer 34 optionally can be connected to a protocolSj e.g., the IS0 7816 protocol. However, such a 
network 36 if the host computer resources 35 include a system may implement a special low level protocol which 
network port. This allows the host computer 34 to gain 25 a pp ea rs as an asynchronous protocol interface to the higher 
access to network resources 37,which include other level protocols. This will allow the devices in the system to 
computers, printers, storage devices, and other potential communicate with each other and with external devices 
resources, including for example resources available on the us i ng high level protocols which require asynchronous corn- 
Internet. In such systems, the smart card 31 can be used as munications. For example, a "polling protocol" may be used 
a tamper-resistant storage unit for network passwords, keys, 30 w j tn a smart card 31 and a terminal 32 that support the ISO 
certificates, electronic cash, and other information which the 781(5 half-duplex low level protocols. In the polling 
host computer 34 uses for network access, electronic protocol, the terminal 32 has an obligation to send packets 
commerce, and other types of network applications. to the smart card 31 at the earliest possible opportunity. In 

An advantage of the smart card 31 is that it is able to the case where there is no terminal data to be sent, a special 

initiate communication with the terminal 32 and thereby 35 class of instruction code may be sent to indicate to the smart 

become a "master" while the terminal 32 acts as a "slave", card 31 that this is only a polling packet. If the smart card 

as illustrated in FIG. 4 and FIG. 5. Referring to FIG. 4, 31 is ready to send data to the terminal 32, it sends a 

communications is in an idle state in the smart card 31 while response to the terminal 32 containing a byte which indi- 

the smart card 31 is processing data or waiting for some cates the length of the data the smart card 32 is ready to send, 

event to occur (ST41). When the smart card 31 needs to 40 The terminal 32 then responds with a special packet having 

communicate with the terminal 32, it transmits a command a length which is equal to the length indicated by the smart 

(e.g., a display data command), or a message, or a packet of card 31. This then allows the smart card 31 to send its data 

information to the terminal (ST42). After the transmission, to the terminal 32, effectively allowing the smart card 31 to 

the smart card 31 waits (ST43) until it receives a response initiate communication with the terminal 32. The polling 

(ST44) from the terminal 32 (e.g., an acknowledgement of 45 may be repeated at the maximum rate that is supported by 

the command). Once the response has been received, the the terminal 32. Such a low level protocol may be aug- 

smart card 31 returns to the idle state (ST41) until the card mented by marking each message in each direction with a 

needs to communicate with the terminal 32 again. Under unique identifier, for example, a sequence number. This 

such a scheme, the smart card 31 may initiate communica- allows the responses in either direction to be deferred and 

tion with the terminal at any time. For example, if data or 50 sent later using the sequence number to correlate with the 

information from the terminal 32 which is needed by the original messages. For example, if the terminal sent a 

smart card 31 to carry out a certain task is missing or message requiring a response, at the low level protocol the 

incomplete, rather than remain in an idle state awaiting smart card could continue communicating other messages 

further data transfer, the smart card 31 can act pro actively back and forth. Then, when the desired response is ready, the 

and request the missing information from the terminal 32. 55 smart card 31 marks the response with the identification 

Referring to FIG. 5, terminal 32 waits in an idle state for number of the initiating message. When the terminal 32 

a command from the smart card 31 (ST51). When a com- receives the response, it correlates the response with the 

mand is detected, the terminal 32 receives the command and original message and returns the response value to the thread 

prepares an appropriate response (ST52 and ST53). The that initiated the message. Such a scheme also may permit 

terminal 32 then transmits the response to the smart card 31 60 the original thread to continue execution without waiting for 

(ST54) and returns to the idle state to await receipt of the response, and allows the response to be passed back to 

another command (ST51). the thread (or to another designated thread) using a callback 

In a similar way, the smart card 31 may access host mechanism. It will be appreciated that this logically presents 

computer resources 35 and network resources 37 by issuing, what appears to be a full asynchronous interface to the 

for example, a print command to a printer resource or a send 65 higher level protocols. 

network message command to a network messaging Asynchronous communication between the smart card 31 

resource. and the terminal 32 allows more complex systems to be 
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designed. For example, conventional packet protocols exist 
which would allow packets to be initiated by both the smart 
card 31 and terminal 32, which may result in multiple 
packets that are in various states of processing occurring at 
the same time. This permits the use of high level features 
such as multi-threaded communications and callbacks. In 
short, FIG. 4 and FIG. 5 are illustrative of the simplest state 
machines that implement smart card initiated 
communications, which is the key to this invention. It is well 
understood that other state machines for both half-duplex 
and fall-duplex communications can be devised, as well as 
non-state based protocols, and are intended to fall within the 
scope of this invention if such communication protocols 
include card initiated communication. Since low level pro- 
tocols based on this invention could allow asynchronous 
communication between the smart card 11 and the terminal 1S 
12, this can further enable high level communication 
protocols, such Remote Procedure Call and Remote Mes- 
sage Invocation, to be used. Such protocols can greatly 
enhance the value of the smart cards for many applications. 
In short, FIG. 4 and FIG. 5 illustrate only the simplest 20 
systems that implement smart card-initiated communica- 
tions. Other systems having both half-duplex and full- 
duplex communications may be devised that, so long as they 
include smart card-initiated communication, are within the 
scope of the invention. 

In another embodiment, a communications protocol, 
shown generally at 70 in FIG. 7 and in more detail in TABLE 
1, defines the commands that the smart card can initiate with 
respect to the terminal, host computer, or network. The 
communications protocol 70 uses ISO 7816 escape com- 
mands with the existing ISO 7816 protocol to generate a new 
set of smart card -initiated commands. The use of the ISO 
7816 escape commands allows the communications protocol 
70 to retain backwards compatibility with standard ISO 
7816 commands. Each command in the communications 
protocol 70 is comprised of the following ISO 7816 fields: 
a class (CLA) field 71, an instruction (INS) field 72, a first 
parameter (PI) field 73, a second parameter (P2) field 74, 
and a data (Data) field 75. Not every field is required for 
every command and some fields may be either left empty or 
filled with a null value. The fields themselves are standard 
ISO 7816 fields well known to one having ordinary skill in 
the art and will not be described here. 

The commands of the communications protocol 70 may 
be defined broadly such that not every terminal, host 
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available, the communications protocol 70 includes an error 
message which may be sent back to the smart card to 
indicate that the requested service is not available. In one 
embodiment, the communications protocol 70 includes a 
query command so that the smart card can query the 
terminal, host computer, or network to determine which 
services are available. In addition, the communications 
protocol 70 may use a global naming convention (e.g., the 
Domain Name Service (DNS)) such that the smart card may 
specify a particular resource on a global basis. 

Referring to TABLE 1, the commands defined in the 
communications protocol 70 include the following: Display 
Request, Activate Input Scan, Request Data Length in 
Buffer, Request Data in Buffer, Activate Secure ID Entry, 
Query Resources, and Send Network Message. The Display 
Request command allows the smart card to display infor- 
mation on the terminal, host computer, or network display 
device. A Java program implementing this command using 
the standard Java Card 1,0 specification is shown in Appen- 
dix A. The Activate Input Scan command scans for user 
input. The Request Data Length in Buffer command, which 
may be executed at any time, determines the length of the 
data in the input buffer. The Request Data in Buffer com- 
mand reads the data entered in the terminal, host computer, 
or network input buffer. The Request a Secure ID Entry 
command requests identification information such as a 
username, password, or biometrics information such as a 
thumbprint or voiceprint. The Query Resources command, 
as indicated above, queries the terminal, host computer, or 
network for available services and resources. This command 
may also be used to determine other information such as 
available user input devices, secure ID devices, network 
connectivity, data files, database availability, and other types 
of services were resources. The Send Network Message 
command sends a message to a network computer which is 
identified by the standard DNS node ID convention. This 
command is sent from the smart card to the host computer, 
which must either receive and execute this command or 
return an error response to the smart card. If the network 
computer identified is the host computer, then the command 
is executed locally. Otherwise, the host computer routes the 
command through the network to the identified network 
computer. 



TABLE 1 



Communications protocol: Mapp in g To ISO 7816 Escape Commands 



Command Type 


CLA 


INS 


PI 


P2 


Data 


Response 


Display Request 


DO 


EO 


Fm 


Lc 


Disp Data 90 00 (OK) 














6F 00 (Error) 


Activate Input Scan 


DO 


El 


00 


00 


None 


90 00 (OK) 












6F 00 (Error) 


Request Data Length In 


DO 


E2 


00 


00 


None 


Length + 90 00 (OK) 


Buffer 












6F 00 (Error) 


Request Data in Buffer 


DO 


E3 


00 


u 


None 


InputData + 90 00 (OK) 














6F 00 (Error) 


Activate Secure ID Entry 


DO 


E4 


00 


00 


None 


Length + IDData + 90 00 (OK) 














6F 00 (Error) 


Query terminal Resources 


DO 


E5 


Rs 


00 


None 


Length + ResData + 90 00 (OK) 












6F 00 (Error) 


Send Network Message 


DO 


E4 


Ld 


Lm 


ID + Msg Length + Response + 90 00 (OK) 














6F 00 (Error) 



computer, network, or the resources connected thereto will 
have the service requested. When a particular service is not 
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The communications protocol 70 may, of course, be 
expanded as required to support other services. Furthermore, 
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for systems that use fall-duplex communication between the smart card 81 sends a command to the terminal 32 based on 

smart card and the terminal and do not require ISO 7816 the services that are available (ST94). The smart card 81 

compatibility, standard asynchronous callback mechanisms then checks to see if a response to the command has been 

can be added to the protocol to expand functionality and received from the terminal 32 (ST95). If a response has been 

improve performance greatly. For example, instead of send- 5 received, the smart card 81 encrypts (ST97) and stores 

ing a network message and waiting for a response, the smart (ST98) any data received from the terminal 32, and prepares 

card can continue normal processing. Once the response has itself to send another command to the terminal 32 (ST94). If 

been prepared by the DNS node that received the message, not, the smart card 81 checks to see if a predefined time 

an asynchronous response message can be sent to the smart period has expired or timed out (ST96). If the predefined 

card. Other half-duplex and full-duplex communications 10 time period has expired, then the smart card 81 re-transmits 

protocols can be devised readily and are intended to fall tne command to the terminal 32 (ST94). If the predefined 

within the scope of this invention if such communications time P eriod has not expired, the smart card 81 checks again 

protocols include card initiated communication. For to see if the response has been received from the terminal 32. 

example, a logical full-duplex scheme may be devised for ^ smart cards described above facilitate a wide range of 

systems that do not have actual full-duplex. new and innovative smart card applications heretofore unre- 

Referring to FIG. 8, another embodiment of a smart card aliz * ble with conventional smart card architectures. Three 

OA & . j oi * j * such applications are disclosed below, 

system 80 comprises a smart card 81 connected to a smart _ , . „ , 

card terminal 32. Tbc smart card 81 has an embedded . Sl ? art P ro f ams ™. t ^f\^ y . f , ® CUlt J° 

4 „ 0 * .„ « OA n develop and debug due to the lack of visibility into the cards 

microcontroUer 82, memory unit 83 and storage urn 84, all necess f tated b f hc strict requir e meDts of most 

of which are interconnected. /The microcontroller 82 20 smart card applications. The ability of the smart card to drive 

executes smart card software and programs, carries out the terminal allows one having ordinary skm in the art t0 

terminal instructions, and generally manages the flow of develop debugging applications that are resident on the card 

data to and from the smart card 81. In some embodiments, and pr0 gram test harnesses to exercise difficult to reach 

the microcontroller 82 may include a microprocessor (e.g., sections of smart card code. Such applications can make use 

a 68HC05), a programmable array logic (PAL), an 2 s of a terminal display to provide internal state and runtime 

application-specific integrated circuit (ASIC), and/or other trace information to assist in debugging card resident appli- 

integrated circuit devices^ The memory unit 83, which may cations. Referring to FIG. 10, one such application begins 

include a random-access-memory (RAM), temporarily with executing a debugging routine (ST101), for example, a 

stores software and data used by the microcontroller 82 memory test routine. After running the routine, the smart 

during program execution. The storage unit 84, which may 30 card outputs a result (ST102), such as, e.g., the number of 

include a read-only memory (RO), stores the basic program rows and columns in the memory unit that passed the test, 

codes and data that are needed to configure and operate the The results are compared with a known or predefined 

smart card 31. New or updated codes and data may be number of good rows and columns (ST103) and the results 

downloaded or programmed into the smart card 81 from are displayed on the terminal display (ST104). In some 

time to time to upgrade the smart card 81. The smart card 81 35 embodiments, the user may use a terminal input device to 

also has a communications unit 85 that is connected to the select different sections of the smart card's program to 

microcontroller 82 and allows the microcontroller 82 to execute. 

transfer data to and from the terminal 32 and other external Network games traditionally have suffered from a lack of 

devices. Although shown as separate blocks, the microcon- security, which allows devious players to manipulate stored 

troller 82, memory unit 83, storage unit 84, and communi- 4 q data to enhance game attributes to the detriment of other 

cations unit 85 may be combined into a single integrated players. This can result in general dissatisfaction with the 

circuit device or an otherwise reduced or expanded number game itself. The solution employed in some cases is to 

of separate IC devices. require all players to access a secure host computer which 

The smart card 81 is connected to the terminal 32 by a stores the gaming files; however, this slows down the host 

smart card interface 86 which facilitates communication 45 computer and limits the number of simultaneous players per 

between the smart card 81 and the terminal 32. The interface game. With a smart card that is able to interact fully with the 

86 typically includes a smart card reader or reader/writer and user and the network, a game may be stored and executed 

a power supply, such as a battery, (not shown) that provides entirely on the smart card. Such a game benefits from the 

power to the smart card 81. In some embodiments, the secure environment provided by the smart card and does not 

interface 86 physically engages the smart card 81. In other 50 require a secure host. This removes the limit on the number 

embodiments, however, the interface 86 may use inductive, of simultaneous players. Also, each player may interact 

capacitive, or optical coupling, or the interface 86 may use directly with other players and be confident that the gaming 

radio frequency signals to connect the smart card 81 to the information stored on the opponent's smart card is free from 

terminal 32. tampering. 

In operation, the smart card 81 is able to access and 55 Solitaire games which reward high scores also are subject 

control the terminal 32 and terminal resources 33 by initi- to such tampering by devious players, which has discour- 

ating communication with the terminal 32 and terminal aged the deployment of such games. However, with the 

resources 33, contrary to conventional smart cards that only game and data files, including the prize validation 

respond to received commands. Referring to FIG. 9, com- information, stored securely and executed in a smart card, 

munication between the smart card 31 and the terminal 36 is 60 these solitaire games can become more viable with dishonest 

established, for example, via an electronic handshake or play prevented and honest levels of achievement appropri- 

series of handshakes (ST91). The smart card 81 than ately rewarded. 

requests a list of available services from the terminal 32 It is to be understood that the embodiments described 

(ST92), The list of services may vary depending on the type above are merely illustrative and that other arrangements 

of terminal 32 (e.g., a video game, security system, etc.) and 65 can be devised by one of ordinary skill in the art at the time 

terminal resources 33. Once the list of available services or the invention was made without departing from the scope of 

commands is received from the terminal 32 (ST93), the the invention. 
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What is claimed is: 

1. A method of operating a smart card and smart card 
terminal allowing asynchronous communication between 
the smart card and smart card terminal such that either the 
smart card or the smart card terminal may operate as master 5 
and the other operating as slave wherein the communication 
between the smart card and the smart card terminal is 
according to the ISO 7816 communications protocol, 
wherein the smart card may operate in a state of expecting 

an instruction from the smart card terminal, comprising: 10 
operating the smart card in a wait mode, wherein the 
smart card is waiting for the smart card terminal to 
issue a command; 
prior to receiving a command from the smart card 
terminal, while waiting for the smart card terminal to 15 
issue a command, transmitting an ISO 7816 escape 
sequence command to the smart card terminal indicat- 
ing to the smart card terminal that the smart card has 
become the master. 

2. The method of operating a smart card and smart card 20 
terminal of claim 1, wherein the escape sequence command 

is selected from a set of commands that includes Display 
Request, Activate Input Scan, Request Data Length In 
Buffer, Request Data in Buffer, Activate Secure ID Entry, 
Query Terminal Resources, Send Network Message. 25 

3. The method of operating a smart card and smart card 
terminal of claim 1, further comprising: 

issuing an ISO 7816 escape command from the smart card 
to the smart card terminal to query the smart card 3Q 
terminal as to which services are available. 

4. The method of claim 3, where in the step of issuing a 
query command includes issuing a command to query 
information selected from a set including availability of user 
input devices, availability of secure ID devices, network 35 
connectivity, availability of data files, availability of data- 
base. 

5. The method of operating a smart card and smart card 
terminal of claim 3, wherein in response to the issued 
command to query the smart card terminal as to which 4Q 
services are available, the smart card terminal responds to 
the query with a list of available services. 

6. The method of operating a smart card and smart card 
terminal of claim 1, further comprising: 

issuing from the smart card to a host computer connected 45 
to the smart card terminal an ISO 7816 escape sequence 
mapped to a Send Network Message command for 
transmitting a message from the smart card to a net- 
worked computer identified by standard DNS node ID 
convention; 50 

receiving at the host computer the ISO 7816 escape 
sequence mapped to a Send Network Message com- 
mand; 

if the networked computer identified in the Sent Network 
Message command is the host computer, causing the 55 
host computer to execute the command or issue an error 
response to the smart card; 

if the networked computer identified in the Sent Network 
Message command is not the host computer, causing 
the host computer to route the command to the identi- 60 
fled networked computer. 



7. A smart card system having asynchronous communi- 
cation between a smart card and a smart card terminal such 
that either the smart card or the smart card terminal may 
operate as master and the other operating as slave, compris- 
ing: 

means located on the smart card for communicating with 
the smart card terminal according to the ISO 7816 
communications protocol; 

means located on the smart card terminal for communi- 
cating with the smart card according to the ISO 7816 
communications protocol; 

the smart card having a means for transmitting an ISO 
7816 escape sequence command to the smart card 
terminal indicating to the smart card terminal that the 
smart card has become the master while the smart card 
operates in a state of expecting an instruction from the 
smart card terminal. 

8. The smart card system of claim 7, wherein the escape 
sequence command is selected from a set of commands that 
includes Display Request, Activate Input Scan, Request 
Data Length In Buffer, Request Data in Buffer, Activate 
Secure ID Entry, Query Terminal Resources, Send Network 
Message. 

9. The smart card system of claim 7, further comprising: 
means for issuing an ISO 7816 escape command from the 

smart card to the smart card terminal to query the smart 
card terminal as to which services are available. 

10. The smart card system of claim 9, wherein the means 
for issuing a query command includes means for issuing a 
command to query information selected from a set including 
availability of user input devices, availability of secure ID 
devices, network connectivity, availability of data files, 
availability of database. 

11. The smart card system of claim 9, further comprising 
means operable to cause, in response to the issued command 
to query the smart card terminal as to which services are 
available, the smart card terminal responds to the query with 
a list of available services. 

12. The smart card system of claim 7, further comprising: 
means for issuing from the smart card to a host computer 

connected to the smart card terminal an ISO 7816 
escape sequence mapped to a Send Network Message 
command for transmitting a message from the smart 
card to a networked computer identified by standard 
DNS node ID convention; 
means for receiving at the host computer the ISO 7816 
escape sequence mapped to a Send Network Message 
command; 

means for, if the networked computer identified in the 
Sent Network Message command is the host computer, 
causing the host computer to execute the command or 
issue an error response to the smart card; and 

means for, if the networked computer identified in the 
Sent Network Message command is not the host 
computer, causing the host computer to route the com- 
mand to the identified networked computer. 
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